In compliance with the National Telecommunications Commission's order, there will be a temporary loss of mobile signal in Manila, Quezon City, Mandaluyong, Makati and other neighboring areas during the Black Nazarene procession on January 9, starting 5 AM.

Spectre is genius. Arbitrary memory access from within a browser's Javascript engine? Holy crap! Lemme just steal your banking info straight out of that sandbox...

Went through the paper and it seems what they're doing is populating the cache using the contents of an array. While doing so, they also do a bunch of proper accesses in order to condition the branch predictor. Then the heist begins with an access to a carefully crafted out-of-bounds index (the memory location you want to read). Because of the previous (valid) accesses, the branch predictor will have set off to speculatively execute the out-of-bounds access. Eventually the CPU realizes it was out of bounds and rolls back the CPU state, which now causes a piece of data to be evicted from the cache. Now by timing against how long it takes to access memory that is known to be in-cache, the contents of the evicted cache line can be determined.

Spectre is genius. Arbitrary memory access from within a browser's Javascript engine? Holy crap! Lemme just steal your banking info straight out of that sandbox...

Went through the paper and it seems what they're doing is populating the cache using the contents of an array. While doing so, they also do a bunch of proper accesses in order to condition the branch predictor. Then the heist begins with an access to a carefully crafted out-of-bounds index (the memory location you want to read). Because of the previous (valid) accesses, the branch predictor will have set off to speculatively execute the out-of-bounds access. Eventually the CPU realizes it was out of bounds and rolls back the CPU state, which now causes a piece of data to be evicted from the cache. Now by timing against how long it takes to access memory that is known to be in-cache, the contents of the evicted cache line can be determined.

In compliance with the National Telecommunications Commission's order, there will be a temporary loss of mobile signal in Manila, Quezon City, Mandaluyong, Makati and other neighboring areas during the Black Nazarene procession on January 9, starting 5 AM.

What's weird is why cities that are far from the area such as QC and Mandaluyong need to be shut down as well. If the purpose is to prevent remote detonation of improvised devices then won't shutting down just Manila be just as effective?

Spectre is genius. Arbitrary memory access from within a browser's Javascript engine? Holy crap! Lemme just steal your banking info straight out of that sandbox...

Went through the paper and it seems what they're doing is populating the cache using the contents of an array. While doing so, they also do a bunch of proper accesses in order to condition the branch predictor. Then the heist begins with an access to a carefully crafted out-of-bounds index (the memory location you want to read). Because of the previous (valid) accesses, the branch predictor will have set off to speculatively execute the out-of-bounds access. Eventually the CPU realizes it was out of bounds and rolls back the CPU state, which now causes a piece of data to be evicted from the cache. Now by timing against how long it takes to access memory that is known to be in-cache, the contents of the evicted cache line can be determined.